Google Git
Sign in
boringssl / boringssl / f526081100c9028205fb960ccbdfc79c42f6bf5e / ssl / ssl_lib.cc
  1. f526081 Switch ssl_aead_ctx, ssl_file, and ssl_lib to C++. by David Benjamin · 8 years ago[Renamed (98%) from ssl/ssl_lib.c]
  2. 52586f9 Adding TLS 1.3 variant to SSL*. by Steven Valdez · 8 years ago
  3. 520e122 Implement experimental alternate encoding of TLS 1.3. by Steven Valdez · 8 years ago
  4. 8f36c51 Revise version negotiation logic on the C side. by Steven Valdez · 8 years ago
  5. 05d4c97 Simplify SSL_get0_next_proto_negotiated. by David Benjamin · 8 years ago
  6. 0a9bf66 Clean up some duplicated code. by David Benjamin · 8 years ago
  7. fc08dfc Rename {ssl,ctx}->{min,max}_version. by David Benjamin · 8 years ago
  8. ca74358 Test SSL_select_next_proto and SSL_get_fd. by David Benjamin · 8 years ago
  9. 0391f16 Fix some malloc failure handling. by David Benjamin · 8 years ago
  10. e831a81 Adding support for sending early data on the client. by Steven Valdez · 8 years ago
  11. d94682d Remove ex_data's dup hook. by David Benjamin · 8 years ago
  12. 93731d9 Remove old SSL min/max version functions. by David Benjamin · 8 years ago
  13. 71c21b4 Add SSL_CTX_set_verify_algorithm_prefs. by David Benjamin · 8 years ago
  14. 7e06de5 Really remove DHE ciphersuites from TLS. by Matthew Braithwaite · 8 years ago
  15. 3cfeb95 Disable SSLv3 by default. by David Benjamin · 8 years ago
  16. c8ff30c Add an option to allow unknown ALPN protocols. by David Benjamin · 8 years ago chromium-3071
  17. 67bb45f Support enabling early data on SSL by Alessandro Ghedini · 8 years ago
  18. 681eb6a Adding support for receiving early data on the server. by Steven Valdez · 8 years ago
  19. 7d2dbc3 Add a comment around the set_{min,max}_version logic. by David Benjamin · 8 years ago
  20. 2d85062 Add Data-less Zero-RTT support. by Steven Valdez · 8 years ago
  21. 57e81e6 Name |select_certificate_cb| return values by Alessandro Ghedini · 8 years ago
  22. 4c341d0 Support asynchronous ticket decryption with TLS 1.0–1.2. by Adam Langley · 8 years ago
  23. be49706 Rename initial_ctx to session_ctx. by David Benjamin · 8 years ago
  24. 6ad20dc Move error-on-empty-cipherlist into ssl_create_cipher_list(). by Matthew Braithwaite · 8 years ago
  25. 35ac5b7 Export server-side ticket_age skew. by David Benjamin · 8 years ago
  26. fe36672 Allow users of the |CRYPTO_BUFFER|-based methods to verify certs after the handshake. by Adam Langley · 8 years ago
  27. 8ebeabf Add SSL_CTX_get_ciphers. by David Benjamin · 8 years ago
  28. 924a352 Remove experimental TLS 1.3 short record header extension. by Steven Valdez · 8 years ago
  29. ad8f5e1 Don't use long for timestamps. by David Benjamin · 8 years ago
  30. 2a3b343 Move X509-related verification code into ssl_x509.c. by Adam Langley · 8 years ago
  31. 34b4c82 Hold CA names as |CRYPTO_BUFFER|s. by Adam Langley · 8 years ago
  32. a57dcfb Add new cipherlist-setting APIs that reject nonsense. by Matthew Braithwaite · 8 years ago
  33. fc02b59 Move tmp.extended_master_secret to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  34. 45738dd Move new_cipher and new_session to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  35. 12709db Stop reporting SSL_R_SHUTDOWN_WHILE_IN_INIT. by David Benjamin · 8 years ago
  36. 5960a90 Move sid_ctx from SSL/SSL_CTX to CERT. by David Benjamin · 8 years ago
  37. 26e1ff3 Remove some unnecessary return values. by David Benjamin · 8 years ago
  38. 83a3212 Move SCT lists and OCSP responses to CERT. by David Benjamin · 8 years ago
  39. 9e766d7 Unexport the handshake's internal state. by David Benjamin · 8 years ago
  40. 908ac19 Moving transcript and PRF functions to SSL_TRANSCRIPT. by Steven Valdez · 8 years ago
  41. 3509dac Add |X509_METHOD| and, using it, move many functions to ssl_x509.c. by Adam Langley · 8 years ago
  42. 8df6766 Support setting per-connection SCT list by Alessandro Ghedini · 8 years ago
  43. 33fe4a0 Remove support for setting per-connection default session timeout by Alessandro Ghedini · 8 years ago
  44. 17b3083 Use a separate timeout scheme for TLS 1.3. by David Benjamin · 8 years ago
  45. 0b1bb12 Push the SSL_CTX session_timeout zero logic up. by David Benjamin · 8 years ago
  46. 3a2b47a Don't use |X509| objects in |CERT|, by default. by Adam Langley · 8 years ago
  47. daf207a Don't use the buffer BIO in TLS. by David Benjamin · 8 years ago
  48. 1a999cf Don't use the buffer BIO in DTLS. by David Benjamin · 8 years ago
  49. 6d50f47 Remove support for RSA premaster logging. by David Benjamin · 8 years ago
  50. d1515a3 Move a number of X.509 functions from ssl_lib.c to ssl_x509.c by Adam Langley · 8 years ago
  51. 07820b5 Add a getter for SSL_set_session_id_context. by David Benjamin · 8 years ago
  52. d261004 Report TLS 1.3 as supporting secure renegotiation. by David Benjamin · 8 years ago
  53. 08b65f4 Enabling 0-RTT on new Session Tickets. by Steven Valdez · 8 years ago
  54. 2be4aa7 Add a helper function for resetting SSL_get_error state. by David Benjamin · 8 years ago
  55. f650c71 Use SSL_CTX_up_ref to up-ref an SSL_CTX. by David Benjamin · 8 years ago
  56. 6f600d6 Add experimental TLS 1.3 short record header extension. by David Benjamin · 8 years ago
  57. 17cf2cb Work around language and compiler bug in memcpy, etc. by David Benjamin · 8 years ago
  58. 65fb425 Remove version-specific cipher lists. by David Benjamin · 8 years ago
  59. 629db8c Add |SSL_get_peer_full_cert_chain|. by Adam Langley · 8 years ago
  60. f1050fd Preserve the peer signature algorithm across resumes. by David Benjamin · 8 years ago
  61. 4882a6c Replace key_exchange_info with group_id. by David Benjamin · 8 years ago
  62. 5488122 Remove SSL_get_dhe_group_size. by David Benjamin · 8 years ago
  63. d519bf6 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  64. 364f7a6 Push the difference in chain semantics to the edge. by Adam Langley · 8 years ago
  65. cb0c29f Move state and next_state to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  66. 2644a13 Set up the SSL_HANDSHAKE object earlier. by David Benjamin · 8 years ago
  67. 287fc4f Don't use SSL_want_* macros internally. by David Benjamin · 8 years ago
  68. c0fc7a1 Revert "Add |SSL_CTX_set0_buffer_pool|." and "Hold certificates in an SSL_SESSION as CRYPTO_BUFFERSs as well." by Adam Langley · 8 years ago
  69. 651aaef Remove CECPQ1 (experimental post-quantum key agreement). by Matthew Braithwaite · 8 years ago
  70. 5a6e616 Add |SSL_CTX_set0_buffer_pool|. by Adam Langley · 8 years ago
  71. 559f064 Support setting per-connection OCSP staple by Alessandro Ghedini · 8 years ago
  72. 7c57286 Remove SSL_set_reject_peer_renegotiations. by David Benjamin · 8 years ago
  73. b79cc84 Fix SSL_clear's interaction with session resumption. by David Benjamin · 8 years ago
  74. 30c4c30 Revise some integer sizes. by David Benjamin · 8 years ago
  75. 813fc01 Remove unreachable check. by David Benjamin · 8 years ago
  76. f04c2e9 Move client_version into SSL_HANDSHAKE. by David Benjamin · 8 years ago
  77. a2bda9f Make more functions static. by David Benjamin · 8 years ago
  78. eebd3c8 Add SSL_(CTX_)set_tls_channel_id_enabled. by David Benjamin · 8 years ago
  79. 2578b29 Make ssl3_choose_cipher and dependencies static. by David Benjamin · 8 years ago
  80. 731058e Typedef ssl_early_callback_ctx to SSL_CLIENT_HELLO. by David Benjamin · 8 years ago
  81. f3c8f8d Pass explicit parameters elsewhere. by David Benjamin · 8 years ago
  82. ce8c9d2 Maintain SSL_HANDSHAKE lifetime outside of handshake_func. by David Benjamin · 8 years ago
  83. bf48364 Support setting per-connection default session lifetime value by Alessandro Ghedini · 8 years ago
  84. 9b885c5 Don't allow invalid SCT lists to be set. by Adam Langley · 8 years ago
  85. bbaf367 Add |SSL_set_retain_only_sha256_of_client_certs|. by David Benjamin · 8 years ago
  86. 4eb95cc Parse ClientHello extensions before deciding on resumption. by David Benjamin · 8 years ago
  87. 78476f6 Move tlsext_ticket_expected to SSL_HANDSHAKE. by David Benjamin · 8 years ago
  88. c5ac2b6 Rename X.509 members in |SSL_SESSION| and |CERT|. by Adam Langley · 8 years ago
  89. a983b4c Set SSL_MODE_NO_AUTO_CHAIN by default. by David Benjamin · 8 years ago
  90. ec978dd Add corpora for fuzzers with fuzzer mode disabled. by David Benjamin · 8 years ago
  91. d2cb1c1 Remove cipher_list_by_id. by David Benjamin · 8 years ago
  92. af3b3d3 Only resolve which cipher list to use once. by David Benjamin · 8 years ago
  93. 34941c0 Forbid renego in SSL 3.0. by David Benjamin · 8 years ago
  94. 49ddf41 Remove redundant copies of the Finished messages. by David Benjamin · 8 years ago
  95. ced00b4 Turn off Finished-based APIs at TLS 1.3 and SSL 3.0. by David Benjamin · 8 years ago
  96. 34de91e Revise server-side ECDSA certificate checks. by David Benjamin · 8 years ago
  97. b74b081 Move next_proto_neg_seen into SSL_HANDSHAKE. by David Benjamin · 8 years ago
  98. a048678 Move some fields from tmp to hs. by David Benjamin · 8 years ago
  99. 803c77a Update crypto negotation to draft 15. by Steven Valdez · 9 years ago
  100. 5fd1807 Implement SSL_CTX_set1_curves_list() by Alessandro Ghedini · 8 years ago